How severe is CVE-2022-30238?

CVE-2022-30238 has a CVSS v3 score of 8.3 (HIGH).

CVE-2022-30238

8.3HIGH

A CWE-287: Improper Authentication vulnerability exists that could allow an attacker to take over the admin account when an attacker hijacks a session. Affected Products: Wiser Smart, EER21000 & EER21

Published: 6/2/2022Updated: 11/21/2024

Description

A CWE-287: Improper Authentication vulnerability exists that could allow an attacker to take over the admin account when an attacker hijacks a session. Affected Products: Wiser Smart, EER21000 & EER21001 (V4.5 and prior)

AI AnalysisPowered by AI

Affected Products

schneider-electricwiser_smart_eer21000_firmware

schneider-electricwiser_smart_eer21000

schneider-electricwiser_smart_eer21001_firmware

schneider-electricwiser_smart_eer21001

References

https://www.se.com/ww/en/download/document/SEVD-2022-130-03/
MitigationVendor Advisory
https://www.se.com/ww/en/download/document/SEVD-2022-130-03/
MitigationVendor Advisory